Every CVE whose affected-product data names Cisco Ios Xr, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (195)
CVE-2020-3284 — CVSS 9.8 (critical): A vulnerability in the enhanced Preboot eXecution Environment (PXE) boot loader for Cisco IOS XR 64-bit Software could allow an…
CVE-2019-1710 — CVSS 9.8 (critical): A vulnerability in the sysadmin virtual machine (VM) on Cisco ASR 9000 Series Aggregation Services Routers running Cisco IOS XR 64-bit…
CVE-2025-20363 — CVSS 9.0 (critical): A vulnerability in the web services of Cisco Secure Firewall Adaptive Security Appliance (ASA) Software, Cisco Secure Firewall Threat…
CVE-2025-20138 — CVSS 8.8 (high): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on…
CVE-2024-20381 — CVSS 8.8 (high): A vulnerability in the JSON-RPC API feature in Cisco Crosswork Network Services Orchestrator (NSO) and ConfD that is used by the web-based…
CVE-2020-3217 — CVSS 8.8 (high): A vulnerability in the Topology Discovery Service of Cisco One Platform Kit (onePK) in Cisco IOS Software, Cisco IOS XE Software, Cisco IOS…
CVE-2024-20398 — CVSS 8.8 (high): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to obtain read/write file system access on…
CVE-2026-20046 — CVSS 8.8 (high): A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker…
CVE-2026-20040 — CVSS 8.8 (high): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands as root on…
CVE-2021-34720 — CVSS 8.6 (high): A vulnerability in the IP Service Level Agreements (IP SLA) responder and Two-Way Active Measurement Protocol (TWAMP) features of Cisco IOS…
CVE-2018-0136 — CVSS 8.6 (high): A vulnerability in the IPv6 subsystem of Cisco IOS XR Software Release 5.3.4 for the Cisco Aggregation Services Router (ASR) 9000 Series…
CVE-2018-0418 — CVSS 8.6 (high): A vulnerability in the Local Packet Transport Services (LPTS) feature set of Cisco ASR 9000 Series Aggregation Services Router Software…
CVE-2019-15989 — CVSS 8.6 (high): A vulnerability in the implementation of the Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an…
CVE-2019-16019 — CVSS 8.6 (high): Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software…
CVE-2019-16020 — CVSS 8.6 (high): Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software…
CVE-2019-16022 — CVSS 8.6 (high): Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software…
CVE-2019-1686 — CVSS 8.6 (high): A vulnerability in the TCP flags inspection feature for access control lists (ACLs) on Cisco ASR 9000 Series Aggregation Services Routers…
CVE-2020-26070 — CVSS 8.6 (high): A vulnerability in the ingress packet processing function of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers…
CVE-2021-1288 — CVSS 8.6 (high): Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could allow an unauthenticated, remote attacker…
CVE-2021-1313 — CVSS 8.6 (high): Multiple vulnerabilities in the ingress packet processing function of Cisco IOS XR Software could allow an unauthenticated, remote attacker…
CVE-2022-20714 — CVSS 8.6 (high): A vulnerability in the data plane microcode of Lightspeed-Plus line cards for Cisco ASR 9000 Series Aggregation Services Routers could…
CVE-2023-20049 — CVSS 8.6 (high): A vulnerability in the bidirectional forwarding detection (BFD) hardware offload feature of Cisco IOS XR Software for Cisco ASR 9000 Series…
CVE-2024-20304 — CVSS 8.6 (high): A vulnerability in the multicast traceroute version 2 (Mtrace2) feature of Cisco IOS XR Software could allow an unauthenticated, remote…
CVE-2025-20115 — CVSS 8.6 (high): A vulnerability in confederation implementation for the Border Gateway Protocol (BGP) in Cisco IOS XR Software could allow an…
CVE-2025-20142 — CVSS 8.6 (high): A vulnerability in the IPv4 access control list (ACL) feature and quality of service (QoS) policy feature of Cisco IOS XR Software for…
CVE-2025-20146 — CVSS 8.6 (high): A vulnerability in the Layer 3 multicast feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation Services Routers, ASR 9902…
CVE-2025-20154 — CVSS 8.6 (high): A vulnerability in the Two-Way Active Measurement Protocol (TWAMP) server feature of Cisco IOS Software and Cisco IOS XE Software could…
CVE-2024-20489 — CVSS 8.4 (high): A vulnerability in the storage method of the PON Controller configuration file could allow an authenticated, local attacker with low…
CVE-2020-3530 — CVSS 8.4 (high): A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local attacker…
CVE-2021-34718 — CVSS 8.1 (high): A vulnerability in the SSH Server process of Cisco IOS XR Software could allow an authenticated, remote attacker to overwrite and read…
CVE-2011-1651 — CVSS 7.8 (high): Cisco IOS XR 3.9.x and 4.0.x before 4.0.3 and 4.1.x before 4.1.1, when an SPA interface processor is installed, allows remote attackers to…
CVE-2011-0949 — CVSS 7.8 (high): Cisco IOS XR 3.6.x, 3.8.x before 3.8.3, and 3.9.x before 3.9.1 does not properly remove sshd_lock files from /tmp/, which allows remote…
CVE-2021-34728 — CVSS 7.8 (high): Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to…
CVE-2016-9215 — CVSS 7.8 (high): A vulnerability in Cisco IOS XR Software could allow an authenticated, local attacker to log in to the device with the privileges of the…
CVE-2011-0943 — CVSS 7.8 (high): Cisco IOS XR 3.8.3, 3.8.4, and 3.9.1 allows remote attackers to cause a denial of service (NetIO process restart or device reload) via a…
CVE-2021-34719 — CVSS 7.8 (high): Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker with a low-privileged account to…
CVE-2016-1456 — CVSS 7.8 (high): The CLI in Cisco IOS XR 6.x through 6.0.1 allows local users to execute arbitrary OS commands in a privileged context by leveraging…
CVE-2016-6428 — CVSS 7.8 (high): Cisco IOS XR 6.1.1 allows local users to execute arbitrary OS commands as root by leveraging admin privileges, aka Bug ID CSCva38349.
CVE-2013-5503 — CVSS 7.8 (high): The UDP process in Cisco IOS XR 4.3.1 does not free packet memory upon detecting full packet queues, which allows remote attackers to cause…
CVE-2012-2488 — CVSS 7.8 (high): Cisco IOS XR before 4.2.1 on ASR 9000 series devices and CRS series devices allows remote attackers to cause a denial of service (packet…
CVE-2011-3295 — CVSS 7.8 (high): The NETIO and IPV4_IO processes in Cisco IOS XR 3.8 through 4.1, as used in Cisco Carrier Routing System and other products, allow remote…
CVE-2020-3473 — CVSS 7.8 (high): A vulnerability in task group assignment for a specific CLI command in Cisco IOS XR Software could allow an authenticated, local CLI shell…
CVE-2024-20320 — CVSS 7.8 (high): A vulnerability in the SSH client feature of Cisco IOS XR Software for Cisco 8000 Series Routers and Cisco Network Convergence System (NCS)…
CVE-2010-0576 — CVSS 7.8 (high): Unspecified vulnerability in Cisco IOS 12.0 through 12.4, IOS XE 2.1.x through 2.3.x before 2.3.2, and IOS XR 3.2.x through 3.4.3, when…
CVE-2015-0695 — CVSS 7.8 (high): Cisco IOS XR 4.3.4 through 5.3.0 on ASR 9000 devices, when uRPF, PBR, QoS, or an ACL is configured, does not properly handle bridge-group…
CVE-2010-0137 — CVSS 7.8 (high): Unspecified vulnerability in the sshd_child_handler process in the SSH server in Cisco IOS XR 3.4.1 through 3.7.0 allows remote attackers…
CVE-2021-1370 — CVSS 7.8 (high): A vulnerability in a CLI command of Cisco IOS XR Software for the Cisco 8000 Series Routers and Network Convergence System 540 Series…
CVE-2011-2549 — CVSS 7.8 (high): Unspecified vulnerability in Cisco IOS XR 4.1.x before 4.1.1 on Cisco Aggregation Services Routers (ASR) 9000 series devices allows remote…
CVE-2025-20172 — CVSS 7.7 (high): A vulnerability in the SNMP subsystem of Cisco IOS Software, Cisco IOS XE Software, and Cisco IOS XR Software could allow an authenticated…
CVE-2016-1409 — CVSS 7.5 (high): The Neighbor Discovery (ND) protocol implementation in the IPv6 stack in Cisco IOS XE 2.1 through 3.17S, IOS XR 2.0.0 through 5.3.2, and…
CVE-2016-6355 — CVSS 7.5 (high): Memory leak in Cisco IOS XR 5.1.x through 5.1.3, 5.2.x through 5.2.5, and 5.3.x through 5.3.2 on ASR 9001 devices allows remote attackers…
CVE-2019-1681 — CVSS 7.5 (high): A vulnerability in the TFTP service of Cisco Network Convergence System 1000 Series software could allow an unauthenticated, remote…
CVE-2019-16023 — CVSS 7.5 (high): Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software…
CVE-2019-16021 — CVSS 7.5 (high): Multiple vulnerabilities in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software…
CVE-2025-20209 — CVSS 7.5 (high): A vulnerability in the Internet Key Exchange version 2 (IKEv2) function of Cisco IOS XR Software could allow an unauthenticated, remote…
CVE-2014-3396 — CVSS 7.5 (high): Cisco IOS XR on ASR 9000 devices does not properly use compression for port-range and address-range encoding, which allows remote attackers…
CVE-2017-6731 — CVSS 7.5 (high): A vulnerability in Multicast Source Discovery Protocol (MSDP) ingress packet processing for Cisco IOS XR Software could allow an…
CVE-2017-3876 — CVSS 7.5 (high): A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR routers could allow an unauthenticated, remote attacker to…
CVE-2017-12270 — CVSS 7.5 (high): A vulnerability in the gRPC code of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could allow an…
CVE-2016-9205 — CVSS 7.5 (high): A vulnerability in the HTTP 2.0 request handling code of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause the…
CVE-2015-6432 — CVSS 7.5 (high): Cisco IOS XR 4.2.0, 4.3.0, 5.0.0, 5.1.0, 5.2.0, 5.2.2, 5.2.4, 5.3.0, and 5.3.2 does not properly restrict the number of Path Computation…
CVE-2016-1407 — CVSS 7.5 (high): Cisco IOS XR through 5.3.2 mishandles Local Packet Transport Services (LPTS) flow-base entries, which allows remote attackers to cause a…
CVE-2016-1426 — CVSS 7.5 (high): Cisco IOS XR 5.x through 5.2.5 on NCS 6000 devices allows remote attackers to cause a denial of service (timer consumption and Route…
CVE-2019-1918 — CVSS 7.4 (high): A vulnerability in the implementation of Intermediate System–to–Intermediate System (IS–IS) routing protocol…
CVE-2024-20327 — CVSS 7.4 (high): A vulnerability in the PPP over Ethernet (PPPoE) termination feature of Cisco IOS XR Software for Cisco ASR 9000 Series Aggregation…
CVE-2024-20317 — CVSS 7.4 (high): A vulnerability in the handling of specific Ethernet frames by Cisco IOS XR Software for various Cisco Network Convergence System (NCS)…
CVE-2021-34714 — CVSS 7.4 (high): A vulnerability in the Unidirectional Link Detection (UDLD) feature of Cisco FXOS Software, Cisco IOS Software, Cisco IOS XE Software…
CVE-2021-34713 — CVSS 7.4 (high): A vulnerability in the Layer 2 punt code of Cisco IOS XR Software running on Cisco ASR 9000 Series Aggregation Services Routers could allow…
CVE-2021-1268 — CVSS 7.4 (high): A vulnerability in the IPv6 protocol handling of the management interfaces of Cisco IOS XR Software could allow an unauthenticated…
CVE-2024-20406 — CVSS 7.4 (high): A vulnerability in the segment routing feature for the Intermediate System-to-Intermediate System (IS-IS) protocol of Cisco IOS XR Software…
CVE-2018-0241 — CVSS 7.4 (high): A vulnerability in the UDP broadcast forwarding function of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to…
CVE-2025-20141 — CVSS 7.4 (high): A vulnerability in the handling of specific packets that are punted from a line card to a route processor in Cisco IOS XR Software Release…
CVE-2019-1846 — CVSS 7.4 (high): A vulnerability in the Multiprotocol Label Switching (MPLS) Operations, Administration, and Maintenance (OAM) implementation of Cisco IOS…
CVE-2019-1849 — CVSS 7.4 (high): A vulnerability in the Border Gateway Patrol (BGP) Multiprotocol Label Switching (MPLS)-based Ethernet VPN (EVPN) implementation of Cisco…
CVE-2019-1910 — CVSS 7.4 (high): A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol…
CVE-2024-20483 — CVSS 7.2 (high): Multiple vulnerabilities in Cisco Routed PON Controller Software, which runs as a docker container on hardware that is supported by Cisco…
CVE-2015-0618 — CVSS 7.1 (high): Cisco IOS XR 5.0.1 and 5.2.1 on Network Convergence System (NCS) 6000 devices and 5.1.3 and 5.1.4 on Carrier Routing System X (CRS-X)…
CVE-2012-4617 — CVSS 7.1 (high): The BGP implementation in Cisco IOS 15.2, IOS XE 3.5.xS before 3.5.2S, and IOS XR 4.1.0 through 4.2.2 allows remote attackers to cause a…
CVE-2009-0637 — CVSS 7.1 (high): The SCP server in Cisco IOS 12.2 through 12.4, when Role-Based CLI Access is enabled, does not enforce the CLI view configuration for file…
CVE-2013-5549 — CVSS 7.1 (high): Cisco IOS XR 3.8.1 through 4.2.0 does not properly process fragmented packets within the RP-A, RP-B, PRP, and DRP-B route-processor…
CVE-2014-3353 — CVSS 7.1 (high): Cisco IOS XR 4.3(.2) and earlier, as used in Cisco Carrier Routing System (CRS), allows remote attackers to cause a denial of service (CPU…
CVE-2008-1159 — CVSS 7.1 (high): Multiple unspecified vulnerabilities in the SSH server in Cisco IOS 12.4 allow remote attackers to cause a denial of service (device…
CVE-2014-2176 — CVSS 7.1 (high): Cisco IOS XR 4.1.2 through 5.1.1 on ASR 9000 devices, when a Trident-based line card is used, allows remote attackers to cause a denial of…
CVE-2017-6728 — CVSS 7.0 (high): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary code at the root…
CVE-2018-15428 — CVSS 6.8 (medium): A vulnerability in the implementation of Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an…
CVE-2022-20758 — CVSS 6.8 (medium): A vulnerability in the implementation of the Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could…
CVE-2021-1440 — CVSS 6.8 (medium): A vulnerability in the implementation of the Resource Public Key Infrastructure (RPKI) feature of Cisco IOS XR Software could allow an…
CVE-2019-1909 — CVSS 6.8 (medium): A vulnerability in the implementation of Border Gateway Protocol (BGP) functionality in Cisco IOS XR Software could allow an…
CVE-2019-12709 — CVSS 6.7 (medium): A vulnerability in a CLI command related to the virtualization manager (VMAN) in Cisco IOS XR Software for Cisco ASR 9000 Series…
CVE-2021-34721 — CVSS 6.7 (medium): Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to gain access to the underlying…
CVE-2021-34722 — CVSS 6.7 (medium): Multiple vulnerabilities in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to gain access to the underlying…
CVE-2023-20236 — CVSS 6.7 (medium): A vulnerability in the iPXE boot function of Cisco IOS XR software could allow an authenticated, local attacker to install an unverified…
CVE-2025-20143 — CVSS 6.7 (medium): A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass…
CVE-2025-20177 — CVSS 6.7 (medium): A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker to bypass Cisco IOS XR image…
CVE-2021-1244 — CVSS 6.7 (medium): Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software…
CVE-2024-20456 — CVSS 6.7 (medium): A vulnerability in the boot process of Cisco IOS XR Software could allow an authenticated, local attacker with high privileges to bypass…
CVE-2021-1136 — CVSS 6.7 (medium): Multiple vulnerabilities in Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco IOS XR NCS540L software…
CVE-2017-6718 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to elevate privileges to the root level…
CVE-2017-6719 — CVSS 6.7 (medium): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to execute arbitrary commands on the host…
CVE-2019-1649 — CVSS 6.7 (medium): A vulnerability in the logic that handles access control to one of the hardware components in Cisco's proprietary Secure Boot…
CVE-2021-1485 — CVSS 6.6 (medium): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to inject arbitrary commands that are…
CVE-2019-16018 — CVSS 6.5 (medium): A vulnerability in the implementation of Border Gateway Protocol (BGP) Ethernet VPN (EVPN) functionality in Cisco IOS XR Software could…
CVE-2020-3120 — CVSS 6.5 (medium): A vulnerability in the Cisco Discovery Protocol implementation for Cisco FXOS Software, Cisco IOS XR Software, and Cisco NX-OS Software…
CVE-2019-16027 — CVSS 6.5 (medium): A vulnerability in the implementation of the Intermediate System–to–Intermediate System (IS–IS) routing protocol…
CVE-2016-1366 — CVSS 6.5 (medium): The SCP and SFTP modules in Cisco IOS XR 5.0.0 through 5.2.5 on Network Convergence System 6000 devices use weak permissions for system…
CVE-2021-40120 — CVSS 6.5 (medium): A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could allow an authenticated…
CVE-2014-3308 — CVSS 6.4 (medium): Cisco IOS XR on Trident line cards in ASR 9000 devices lacks a static punt policer, which allows remote attackers to cause a denial of…
CVE-2014-2144 — CVSS 6.1 (medium): Cisco IOS XR does not properly throttle ICMPv6 redirect packets, which allows remote attackers to cause a denial of service (IPv4 and IPv6…
CVE-2014-3322 — CVSS 6.1 (medium): Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of IP packets, which allows remote…
CVE-2014-3379 — CVSS 6.1 (medium): Cisco IOS XR 5.1 and earlier on Network Convergence System 6000 devices allows remote attackers to cause a denial of service (NPU and card…
CVE-2022-20849 — CVSS 6.1 (medium): A vulnerability in the Broadband Network Gateway PPP over Ethernet (PPPoE) feature of Cisco IOS XR Software could allow an…
CVE-2017-6666 — CVSS 6.0 (medium): A vulnerability in the forwarding component of Cisco IOS XR Software for Cisco Network Convergence System (NCS) 5500 Series Routers could…
CVE-2021-34709 — CVSS 6.0 (medium): Multiple vulnerabilities in image verification checks of Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco…
CVE-2021-34708 — CVSS 6.0 (medium): Multiple vulnerabilities in image verification checks of Cisco Network Convergence System (NCS) 540 Series Routers, only when running Cisco…
CVE-2021-1389 — CVSS 5.8 (medium): A vulnerability in the IPv6 traffic processing of Cisco IOS XR Software and Cisco NX-OS Software for certain Cisco devices could allow an…
CVE-2023-20191 — CVSS 5.8 (medium): A vulnerability in the access control list (ACL) processing on MPLS interfaces in the ingress direction of Cisco IOS XR Software could…
CVE-2019-1712 — CVSS 5.8 (medium): A vulnerability in the Protocol Independent Multicast (PIM) feature of Cisco IOS XR Software could allow an unauthenticated, remote…
CVE-2023-20190 — CVSS 5.8 (medium): A vulnerability in the classic access control list (ACL) compression feature of Cisco IOS XR Software could allow an unauthenticated…
CVE-2020-3190 — CVSS 5.8 (medium): A vulnerability in the IPsec packet processor of Cisco IOS XR Software could allow an unauthenticated remote attacker to cause a denial of…
CVE-2025-20145 — CVSS 5.8 (medium): A vulnerability in the access control list (ACL) processing in the egress direction of Cisco IOS XR Software could allow an…
CVE-2021-34737 — CVSS 5.8 (medium): A vulnerability in the DHCP version 4 (DHCPv4) server feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to…
CVE-2024-20322 — CVSS 5.8 (medium): A vulnerability in the access control list (ACL) processing on Pseudowire interfaces in the ingress direction of Cisco IOS XR Software…
CVE-2014-3321 — CVSS 5.7 (medium): Cisco IOS XR 4.3.4 and earlier on ASR 9000 devices, when bridge-group virtual interface (BVI) routing is enabled, allows remote attackers…
CVE-2015-4205 — CVSS 5.7 (medium): Cisco IOS XR 5.3.1 on ASR 9000 devices allows remote attackers to cause a denial of service (NPU chip reset or line-card reload) by sending…
CVE-2023-20135 — CVSS 5.7 (medium): A vulnerability in Cisco IOS XR Software image verification checks could allow an authenticated, local attacker to execute arbitrary code…
CVE-2021-1128 — CVSS 5.5 (medium): A vulnerability in the CLI parser of Cisco IOS XR Software could allow an authenticated, local attacker to view more information than their…
CVE-2024-20343 — CVSS 5.5 (medium): A vulnerability in the CLI of Cisco IOS XR Software could allow an authenticated, local attacker to read any file in the file system of the…
CVE-2021-34771 — CVSS 5.5 (medium): A vulnerability in the Cisco IOS XR Software CLI could allow an authenticated, local attacker to view more information than their…
CVE-2009-0629 — CVSS 5.4 (medium): The (1) Airline Product Set (aka ALPS), (2) Serial Tunnel Code (aka STUN), (3) Block Serial Tunnel Code (aka BSTUN), (4) Native Client…
CVE-2016-6421 — CVSS 5.3 (medium): Cisco IOS XR 5.2.2 allows remote attackers to cause a denial of service (process restart) via a crafted OSPF Link State Advertisement (LSA)…
CVE-2021-1243 — CVSS 5.3 (medium): A vulnerability in the Local Packet Transport Services (LPTS) programming of the SNMP with the management plane protection feature of Cisco…
CVE-2019-15998 — CVSS 5.3 (medium): A vulnerability in the access-control logic of the NETCONF over Secure Shell (SSH) of Cisco IOS XR Software may allow connections despite…
CVE-2016-1433 — CVSS 5.3 (medium): Cisco IOS XR 6.0 and 6.0.1 on NCS 6000 devices allows remote attackers to cause a denial of service (OSPFv3 process reload) via crafted…
CVE-2016-1376 — CVSS 5.3 (medium): Cisco IOS XR 4.2.3, 4.3.0, 4.3.4, and 5.3.1 on ASR 9000 devices allows remote attackers to cause a denial of service (CRC and symbol…
CVE-2016-1361 — CVSS 5.3 (medium): Cisco IOS XR through 4.3.2 on Gigabit Switch Router (GSR) 12000 devices does not properly check for a Bidirectional Forwarding Detection…
CVE-2020-3364 — CVSS 5.3 (medium): A vulnerability in the access control list (ACL) functionality of the standby route processor management interface of Cisco IOS XR Software…
CVE-2024-20390 — CVSS 5.3 (medium): A vulnerability in the Dedicated XML Agent feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a…
CVE-2019-1711 — CVSS 5.3 (medium): A vulnerability in the Event Management Service daemon (emsd) of Cisco IOS XR Software could allow an unauthenticated, remote attacker to…
CVE-2017-6599 — CVSS 5.3 (medium): A vulnerability in Google-defined remote procedure call (gRPC) handling in Cisco IOS XR Software could allow an unauthenticated, remote…
CVE-2018-0286 — CVSS 5.3 (medium): A vulnerability in the netconf interface of Cisco IOS XR Software could allow an unauthenticated, remote attacker to cause a denial of…
CVE-2017-12355 — CVSS 5.3 (medium): A vulnerability in the Local Packet Transport Services (LPTS) ingress frame-processing functionality of Cisco IOS XR Software could allow…
CVE-2014-8004 — CVSS 5.0 (medium): Cisco IOS XR allows remote attackers to cause a denial of service (LISP process reload) by establishing many LISP TCP sessions, aka Bug ID…
CVE-2007-4430 — CVSS 5.0 (medium): Unspecified vulnerability in Cisco IOS 12.0 through 12.4 allows context-dependent attackers to cause a denial of service (device restart…
CVE-2006-1928 — CVSS 5.0 (medium): Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 routers, allows remote attackers to…
CVE-2015-6301 — CVSS 5.0 (medium): The DHCPv6 server in Cisco IOS on ASR 9000 devices with software 5.2.0 Base allows remote attackers to cause a denial of service (process…
CVE-2015-6297 — CVSS 5.0 (medium): The DHCPv6 server in Cisco IOS on ASR 9000 devices with software 5.2.0 Base allows remote attackers to cause a denial of service (process…
CVE-2015-4285 — CVSS 5.0 (medium): The Local Packet Transport Services (LPTS) implementation in Cisco IOS XR 5.1.2, 5.1.3, 5.2.1, and 5.2.2 on ASR9k devices makes incorrect…
CVE-2015-4284 — CVSS 5.0 (medium): The Concurrent Data Management Replication process in Cisco IOS XR 5.3.0 on ASR 9000 devices allows remote attackers to cause a denial of…
CVE-2015-4223 — CVSS 5.0 (medium): Cisco IOS XR 5.1.3 allows remote attackers to cause a denial of service (process reload) via crafted MPLS Label Distribution Protocol (LDP)…
CVE-2006-1927 — CVSS 5.0 (medium): Cisco IOS XR, when configured for Multi Protocol Label Switching (MPLS) and running on Cisco CRS-1 or Cisco 12000 series routers, allows…
CVE-2013-6700 — CVSS 5.0 (medium): The SNMP module in Cisco IOS XR allows remote attackers to cause a denial of service (process reload) via a request for an unspecified MIB…
CVE-2015-4191 — CVSS 5.0 (medium): Cisco IOS XR 5.2.1 allows remote attackers to cause a denial of service (ipv6_io service reload) via a malformed IPv6 packet, aka Bug ID…
CVE-2015-0776 — CVSS 5.0 (medium): telnetd in Cisco IOS XR 5.0.1 on Network Convergence System 6000 devices allows remote attackers to cause a denial of service (device…
CVE-2015-0694 — CVSS 5.0 (medium): Cisco ASR 9000 devices with software 5.3.0.BASE do not recognize that certain ACL entries have a single-host constraint, which allows…
CVE-2015-0672 — CVSS 5.0 (medium): The DHCPv4 server in Cisco IOS XR 5.2.2 on ASR 9000 devices allows remote attackers to cause a denial of service (service outage) via a…
CVE-2015-0657 — CVSS 5.0 (medium): Cisco IOS XR allows remote attackers to cause a denial of service (RSVP process reload) via a malformed RSVP packet, aka Bug ID CSCur69192.
CVE-2014-8014 — CVSS 5.0 (medium): Cisco IOS XR allows remote attackers to cause a denial of service (RSVP process reload) via a malformed RSVP packet, aka Bug ID CSCub63710.
CVE-2014-8005 — CVSS 5.0 (medium): Race condition in the lighttpd module in Cisco IOS XR 5.1 and earlier on Network Convergence System 6000 devices allows remote attackers to…
CVE-2014-3378 — CVSS 5.0 (medium): tacacsd in Cisco IOS XR 5.1 and earlier allows remote attackers to cause a denial of service (process reload) via a malformed TACACS+…
CVE-2014-3376 — CVSS 5.0 (medium): Cisco IOS XR 5.1 and earlier allows remote attackers to cause a denial of service (process reload) via a malformed RSVP packet, aka Bug ID…
CVE-2013-1162 — CVSS 5.0 (medium): The traffic engineering (TE) processing subsystem in Cisco IOS XR allows remote attackers to cause a denial of service (process restart)…
CVE-2013-1204 — CVSS 5.0 (medium): Memory leak in the SNMP process in Cisco IOS XR allows remote attackers to cause a denial of service (memory consumption or process reload)…
CVE-2013-3470 — CVSS 5.0 (medium): The RIP process in Cisco IOS XR allows remote attackers to cause a denial of service (process crash) via a crafted version-2 RIP packet…
CVE-2013-5498 — CVSS 5.0 (medium): The PPTP-ALG component in CRS Carrier Grade Services Engine (CGSE) and ASR 9000 Integrated Service Module (ISM) in Cisco IOS XR allows…
CVE-2014-3271 — CVSS 5.0 (medium): The DHCPv6 implementation in Cisco IOS XR allows remote attackers to cause a denial of service (device crash) via a malformed packet, aka…
CVE-2014-3270 — CVSS 5.0 (medium): The DHCPv6 implementation in Cisco IOS XR allows remote attackers to cause a denial of service (process hang) via a malformed packet, aka…
CVE-2023-20064 — CVSS 4.6 (medium): A vulnerability in the GRand Unified Bootloader (GRUB) for Cisco IOS XR Software could allow an unauthenticated attacker with physical…
CVE-2013-3464 — CVSS 4.6 (medium): Cisco IOS XR allows local users to cause a denial of service (Silicon Packet Processor memory corruption, improper mutex handling, and…
CVE-2014-3335 — CVSS 4.6 (medium): Cisco IOS XR 4.3(.2) and earlier on ASR 9000 devices does not properly perform NetFlow sampling of packets with multicast destination MAC…
CVE-2013-5565 — CVSS 4.3 (medium): The OSPFv3 functionality in Cisco IOS XR 5.1 allows remote attackers to cause a denial of service (process crash) via a malformed LSA…
CVE-2020-3449 — CVSS 4.3 (medium): A vulnerability in the Border Gateway Protocol (BGP) additional paths feature of Cisco IOS XR Software could allow an unauthenticated…
CVE-2023-20233 — CVSS 4.3 (medium): A vulnerability in the Connectivity Fault Management (CFM) feature of Cisco IOS XR Software could allow an unauthenticated, remote attacker…
CVE-2022-20846 — CVSS 4.3 (medium): A vulnerability in the Cisco Discovery Protocol implementation for Cisco IOS XR Software could allow an unauthenticated, adjacent…
CVE-2014-3343 — CVSS 4.3 (medium): Cisco IOS XR 5.1 allows remote attackers to cause a denial of service (DHCPv6 daemon crash) via a malformed DHCPv6 packet, aka Bug ID…
CVE-2024-20319 — CVSS 4.3 (medium): A vulnerability in the UDP forwarding code of Cisco IOS XR Software could allow an unauthenticated, adjacent attacker to bypass configured…
CVE-2025-20144 — CVSS 4.0 (medium): A vulnerability in the hybrid access control list (ACL) processing of IPv4 packets in Cisco IOS XR Software could allow an unauthenticated…
CVE-2013-1234 — CVSS 4.0 (medium): The SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (process restart) via crafted SNMP packets…
CVE-2014-3377 — CVSS 4.0 (medium): snmpd in Cisco IOS XR 5.1 and earlier allows remote authenticated users to cause a denial of service (process reload) via a malformed…
CVE-2014-3342 — CVSS 4.0 (medium): The CLI in Cisco IOS XR allows remote authenticated users to obtain sensitive information via unspecified commands, aka Bug IDs CSCuq42336…
CVE-2015-0661 — CVSS 4.0 (medium): The SNMPv2 implementation in Cisco IOS XR allows remote authenticated users to cause a denial of service (snmpd daemon reload) via a…
CVE-2015-4195 — CVSS 4.0 (medium): Cisco IOS XR 5.1.1.K9SEC allows remote authenticated users to cause a denial of service (vty error, and SSH and TELNET outage) via a…
CVE-2013-1216 — CVSS 4.0 (medium): Memory leak in the SNMP module in Cisco IOS XR allows remote authenticated users to cause a denial of service (memory consumption and…
CVE-2009-1154 — CVSS 3.3 (low): Cisco IOS XR 3.8.1 and earlier allows remote attackers to cause a denial of service (process crash) via a long BGP UPDATE message, as…
CVE-2009-2056 — CVSS 3.3 (low): Cisco IOS XR 3.8.1 and earlier allows remote authenticated users to cause a denial of service (process crash) via vectors involving a BGP…
CVE-2005-2451 — CVSS 2.1 (low): Cisco IOS 12.0 through 12.4 and IOS XR before 3.2, with IPv6 enabled, allows remote attackers on a local network segment to cause a denial…